FEAT: add WebSocket-based prompt target for Microsoft Copilot #1275
+3,021
−24
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
paulinek13
changed the title
- Rename _parse_message() to _parse_raw_message() - Split on record separator (\x1e) and processes all frames, not just first - Add FINAL_DATA_FRAME (type 3) enum value for completion signals - Extract bot message parsing logic into lambda for reusability - Fixes stop condition to handle FINAL_DATA_FRAME and remove flawed "is_user_input and PING" logic
…way because of `enterprise-prod-first-party-app-policy` This reverts commit 276290f.
This reverts commit ded56c6.
rlundeen2
reviewed
Jan 23, 2026
rlundeen2
reviewed
Jan 23, 2026
rlundeen2
reviewed
Jan 23, 2026
rlundeen2
reviewed
Jan 23, 2026
rlundeen2
reviewed
Jan 23, 2026
rlundeen2
reviewed
Jan 23, 2026
Contributor
rlundeen2
left a comment
rlundeen2
left a comment
There was a problem hiding this comment.
@paulinek13 this is super cool! Thanks for tackling!
Before merging, I'd like to test, which I'm not setup to do as is :) But if you take the auth token change where I can paste tokens or a raw request or something without a headless browser, then I can check usage.
But looks good! No major concerns
Contributor
Author
|
@rlundeen2 Thank you for your review! I've updated the code and added a new manual authentication method that only requires an already acquired access token. The automated browser flow remains the default, but using the manual method is straightforward: target = WebSocketCopilotTarget(authenticator=ManualCopilotAuthenticator()) |
rlundeen2
approved these changes
Jan 27, 2026
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Resolves #343
This PR introduces
WebSocketCopilotTarget, enabling sending prompts to Microsoft Copilot via WebSocket.Implementation reference: powerpwn/copilot/copilot_connector/copilot_connector.py
Authentication is handled automatically via
CopilotAuthenticator(also a new addition), which uses Playwright to automate browser login and obtain the required access tokens.Tests and Documentation
✅ both
WebSocketCopilotTargetandCopilotAuthenticatorare documented✅ unit tests are added for both
The following related items I'd like to address in separate PRs:
image_pathdata type (WebSocketCopilotTarget)CopilotAuthenticator)